CVE-2026-3912

Published: Mar 24, 2026

Modified: Mar 25, 2026

PUBLISHED

Description

Injection vulnerabilities due to validation/sanitisation of user-supplied input in ActiveMatrix BusinessWorks and Enterprise Administrator allows information disclosure, including exposure of accessible local files and host system details, and may allow manipulation of application behaviour.

Vendor	Product	Versions
Tibco	ActiveMatrix BusinessWorks	affected `6.12.0 - < HF1` affected `6.11.0 - < HF4` affected `6.10.0 - < HF6` affected `6.9.1 - < HF8`
Tibco	Enterprise Administrator	affected `2.4.3 - < HF2`

References

https://community.tibco.com/advisories/tibco-security-advisory-march-24-2026-tibco-activematrix-businessworks-cve-2026-3912-r227/

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2026-3912

Description

Affected Products

References